Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e33342e322e302f32332d3233203d3e203336323336.roa
File: 3138352e33342e322e302f32332d3233203d3e203336323336.roa (raw, json)
Hash identifier: 8j/FN2IUjIWs9q7LiLjRkNawj23qxQ6L2VkD0yjls94=
Subject key identifier: 1E:C6:CC:C4:97:49:CD:83:EC:B7:22:57:AB:BF:2D:8D:EA:50:F0:2D
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 68B7A6E03D0AA05BFF98EA4251B769E6CE253725
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e33342e322e302f32332d3233203d3e203336323336.roa
Signing time: Thu 22 Aug 2024 19:13:03 +0000
ROA not before: Thu 22 Aug 2024 19:08:03 +0000
ROA not after: Thu 21 Aug 2025 19:13:03 +0000
asID: 36236
IP address blocks: 185.34.2.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:b7:a6:e0:3d:0a:a0:5b:ff:98:ea:42:51:b7:69:e6:ce:25:37:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Aug 22 19:08:03 2024 GMT
Not After : Aug 21 19:13:03 2025 GMT
Subject: CN=1EC6CCC49749CD83ECB72257ABBF2D8DEA50F02D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:20:c6:d4:bd:6a:d9:28:da:53:f4:5c:23:6f:
50:89:03:3d:f8:5f:8d:9c:4c:63:3c:6d:7e:62:f5:
1e:c5:da:e3:85:56:46:8f:24:d3:20:a3:6a:0f:d9:
49:04:a6:27:1e:04:1a:c5:91:27:20:89:cc:61:dd:
56:59:eb:7d:a3:93:5f:e4:45:33:d7:ae:f6:9b:d2:
23:a1:28:1f:3d:af:29:8a:23:c3:a2:ad:40:f4:a3:
ab:63:6f:a4:fb:89:26:f2:c3:c7:67:eb:4e:77:97:
04:31:94:cf:bc:91:5e:39:01:17:7c:34:3a:d4:11:
fd:59:c9:b4:73:38:d4:06:a2:b7:49:8c:37:a7:d2:
95:eb:82:cd:ea:df:7a:df:ed:68:a0:81:57:bd:be:
9e:57:24:2e:e1:de:19:1a:a8:6c:b5:d6:31:92:99:
6d:de:94:cc:ab:98:bf:ab:0f:46:6c:45:91:dd:3f:
94:60:7c:6a:00:20:cd:8a:29:2f:8a:70:41:06:ca:
15:15:d7:f2:37:04:5a:77:46:b5:c0:af:73:8d:cf:
7f:b1:a7:2d:ad:9d:70:83:d5:53:80:5c:f7:4a:0c:
cc:8e:4b:c4:68:62:fd:53:e4:60:ae:bf:95:82:1c:
86:14:6d:31:a9:c9:57:0f:05:56:50:24:f0:4a:25:
02:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C6:CC:C4:97:49:CD:83:EC:B7:22:57:AB:BF:2D:8D:EA:50:F0:2D
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e33342e322e302f32332d3233203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.2.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:46:c6:8b:d6:d3:24:84:31:00:1c:cc:b2:1e:81:d5:9d:ce:
19:7e:53:e9:a3:e8:96:7b:43:81:c3:ef:b7:ff:99:e4:f7:4c:
38:e2:31:d6:77:f0:8f:10:85:21:50:42:59:85:ff:74:4d:6e:
65:8a:93:dd:db:df:ff:43:c2:8a:69:d3:92:0b:66:6c:b0:e9:
44:c0:a4:1c:0a:61:03:1b:4e:0b:0d:5d:62:ce:74:81:9e:5f:
5c:73:c2:81:3e:f1:83:72:79:fd:80:f7:2e:52:96:a1:33:19:
69:60:9a:f6:ed:48:8e:eb:9e:7d:ac:0f:02:97:e2:c5:67:d3:
2a:8f:ef:d1:a6:ab:c1:2b:b9:e2:e6:ab:e0:b5:4d:ce:2b:e8:
b6:95:c1:88:b0:f6:1c:86:fc:98:0b:cd:be:b6:b1:16:07:d8:
af:af:0c:16:44:9f:cc:39:cf:a9:07:9a:0d:0d:c2:04:81:62:
99:cd:74:78:06:28:3a:46:19:72:8f:95:df:46:ef:f1:66:12:
aa:ed:c5:34:dd:a3:db:96:60:63:3e:b2:4d:9e:63:2f:d1:29:
08:f9:99:fd:72:5f:19:5a:e7:39:cf:42:00:f3:1a:d1:60:19:
c1:bd:6d:b3:2c:1d:e7:7a:8e:2e:13:89:95:c8:4a:db:5a:1d:
40:53:62:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:45:14 2024 by rpki-client on console-ams.rpki-client.org